Salesforce Admin Prep Notes - Locale Settings and Security Key Terms

December 13, 2023
|
Salesforce

Locale settings in Salesforce refer to the configuration options that allow users to customize the display of data based on their preferred language, date, time, and number formats. These settings ensure that Salesforce caters to the regional and language preferences of its users. Default settings are configured at the company level. New users will inherit the default settings. These settings can be modified at the user record level.  For example, assume company settings apply to the Central time zone.  A new user in the East Coast, will inherit date and time settings  that apply to the Central Time zone, unless the user record is updated to reflect the Eastern Time zone.  The same applies to language and currency settings if you are working in a multi national organization. The settings at the user level override the corporate and company settings, providing flexibility for individual preferences. This three-tiered approach ensures that Salesforce adapts seamlessly to the diverse needs of your organization and its users. Here are key aspects of locale settings in Salesforce:

Company Settings: Grouping of information on your organization

  • Company Information: Name and Address, Primary Contact, Default Locale, Currency Local, Storage Used, Licenses available
  • Financial Information: Fiscal Year, Currencies
  • Support Information: Business Hours, Holidays

Corporate Locale Settings: Default values for users unless the overridden by the User's record.

  • Locale: Date and Time Formats, Number Formats, Name Order, Addresses, Default Currency
  • Language: All Text, Online Help
  • Time Zone: Event/Start and End Times, Time in Date/Time Fields

User Locale Settings: Display for different users based on geographical location.

  • Locale: Date/Time Formats, Number Formats, Name Order, Addresses
  • Language: All Text, Help
  • Currency: Default Currency
  • Time Zone: Event/Start and End Times, Time in Date/Time Fields

More Detail on Settings and Security Key Terms

Fiscal Year: You have standard and  custom fiscal years. A standard fiscal year is 12 months. A standard fiscal quarter is 12weeks. A standard fiscal year starts on the first day of the month. Custom Fiscal Years have 13-month years and 13-week quarters. When you start using custom fiscal years you cannot  revert to using standard fiscal years.

Currencies: When dealing with multiple currencies, you are better off working with an app that captures current conversion rates. Otherwise, you will fail to capture the true value of your Opportunities in the pipeline. The app keeps up with the exchange rates, so you don't have to manage them manually. that are outside the corporate default, so you see all of these are U.S. dollar.

Activities: There are two types of activities that can be related to records or individuals, Tasks and Events. Activities can be customized. You can create new fields for specific relevant information. You can also have different activities for different users. Activities can be customized if you don't like what's out-of-the-box

  • A task is an action that  needs to be completed. Tasks must be marked complete once the user is done.
  • An event is a calendar entry. Events are automatically marked as complete once the start date has been reached.
  • Tasks and events are a great way to capture and keep up with actions that are associated with records in Salesforce.
  • Completed tasks move to Activity History once they have been completed.

Calendars: Salesforce provides you with the ability to use multiple calendars.  Every user has a personal calendar and can grant access to specific users.

Chatter: Salesforce’s collaboration tool. It is similar to the functionality of MS Teams. You can follow people,  records or files.  You have the ability to  like posts, download files, share  internal and external links,  comment on posts,  and attach files to posts or records.

User: A user is an individua l that has access to your Salesforce organization. Each user is identified with a unique user record. User data is composed of personal information, access information, and locale. Personal information includes their name, Salesforce alias, e-mail, phone, address, and title. Their access and security information includes their username, any associated licenses, profile, their role, and login history. Their locale includes information such as time zone, locale, language and currency. There are three ways to create a new user.

  • First ,you  can use the click path Setup|Users and create users one by one.  
  • Secondly, you can use the click path Setup|Users  and use the option to “Add Multiple Users”.
  • Lastly, You can upload multiple users in mass using a spreadsheet and Data Loader.

Login security controls: You can control when and where somebody logs into Salesforce using Trusted IP ranges.

  • If a user is within the Trusted IP range they will be allowed to log into Salesforce using their credentials.
  • If they are outside of the IP range, the user will need to use another authentication method to log in such as a verification code. 
  • Similarly, you can use organization wide trusted IP ranges where admins can manually add trusted IP addresses for organizations which allows the users to bypass the verification process.

Password policies: Change passwords often, such as 90 days or less.

  • Require unique passwords
  • Requiring the length of passwords to be 10 characters or longer.
  • Require a mix of letters and numbers and special characters and passwords.
  • Reminder users never to share passwords.

Restricting login hours and login IP ranges on profiles: You can define when and where users can log into your organization on the user profile. You can restrict logins by IP address, or you can restrict logins by day and time. Times are set in one-hour increments.  Login times are based on corporate defaults and not the user’s locale.

Identity verification: When a user logs in from out side a trusted IP range and uses a browser not recognized by the organization. The user is challenged to verify their identity. Meaning, that a verification code will be needed for the user to confirm their identity.

Multifactor authentication: With multifactor authentication users provide a second verification or multiple factors through a verification method, such as an authenticator app. You can set multi-factor authentication:

  • For every login
  • Logins through an API
  • To access specific features

Single sign-on: This authentication method enables users to log into multiple applications using their credentials. In practice you configure your system to trust another system to authenticate users which removes the need for the users to log into each system individually.

My domain: Allows you to specify a customer specific name to include in your Salesforce org URL's. An example would be https://mycompany.my.salesforce.com.  As of Winter 2023 enhanced domains will be enforced.

Health check: Helps identify and fix vulnerabilities discovered with your security settings. It provides a summary report on how well your organization has fallen within Salesforce’s recommendations. Less restrictive settings will result in a lower score.

Profiles: Profiles are created for groups of users. Generally, you do not create a profile for a single user. Updates to a profile applies the updates to all users under the profile. They define how users can access objects and data and what actions they can take within the application. Users are assigned one profile. Profiles control access to: assigned apps, tab settings, record type assignments, page layout assignments, and field permissions.

Salesforce standard profiles: There are six standard profiles. You cannot change or delete standard profiles. You can create a custom profile by cloning one of the standard profiles and editing the clone.

  • System Administrator
  • Standard User
  • Solution Manager
  • Marketing User
  • Contract Manager
  • Minimum Access - A bare bones profile. Using the Minimum Access Profile  is recommended when creating a new profile.

Permissions: Define what actions a user can take. There are app permissions, system permissions, standard objects permissions and custom object permissions.

Permission sets: Grant additional permission to specific users.  Permission sets are applied on top of an existing profile.  Permission sets add additional access but do not remove access. You can assign Permission sets through either the Permission Set or from the User Record.  Total User Access = User Profile + Assigned Permission Sets.

Permission Set Groups: Bundle permission sets together based on user job functions. Assign users to the group through the Permission Set Group.  

Muting Permissions: You can use a Muting Permission Set with a Permission Set Group to disable permissions. Muting affects all members of the group. You will need to identify the object and the permissions you are muting.

Object access: CRED permissions – Create, Read, Edit, Delete. CRED is provided through the Profile, Permission Set, or Permission Set Group.

Users: Users cannot be deleted, but you can deactivate users.

 

← View all posts